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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

LiiBtinQ of Claims: 

1 . (cancelled) 

2. (previously presented) A method as described In dalm 14 wherein said 
publicly known manner for deriving an integer from said published infonmation 
comprises applying a hashing function to said message M. 

3. (original) A method as described in claim 2 wherein said message M 
includes infomriatlon lAV identifying said digital postage meter and operating parameters 
applicable to said digital postage meter. 

4. (original) A method as desaibed in claim 2 wherein said message M 
includes information lAV identifying said digital postage meter and operating parameters 
applicable to said digital postage meter. 

5. (previously presented) A method as described in claim 14 wherein said 
group [P] Is defined on an elliptic curve. 

6. (previously presented) A method as described in claim 14 wherein said 
message M includes information tying said postage meter's public key KeyDM*P to said 
infomiation lAV. 

7. (cancelled) 
d. (cancelled) 
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9. (cancelled) 

10. (cancelled) 

1 1 . (cancelled) 

12. (cancelled) 

13. (cancelled) 

14. (previously presented) A method for controlling, and distributing information 
between a digital postage meter and a certifying station operated by a certifying 
authority CA for publishing information, so that a public key KeyDM*P of said digital 
postage meter can be detemlned by a party seeking to verify Indicia printed by said 
digital postage meter from said published Information with assurance that said public 
key KeyDM*P has been certified by said certifying authority CA, said method comprising 
the steps of: 

a) defining and publishing a finite group [P] with a binary operation [+] and 
publishing a particular point P in said group; 

b) defining and publishing a binary operation K*p, where K is an integer and p is 
a point in said group, such that K*p Is a point in said group computed by applying said 
operation [+] to K copies of said point p; 

c) controlling a certifying station to publish a certificate OMCdm for said digital 
postage meter, wherein; 

OMCdm = (rDM+ rcA)*P; and wherein 
roM is a random Integer generated by said digital postage meter and rcA is a random 
integer generated by said certifying station; 
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d) controlling said certifying station to publish a message M; 

e) controlling said certifying station to generate an integer Idm . and send said 
integer to said digital postage meter, wherein; 

Idm = rcA+ H(M)KeycA; and wherein 
H(M) is an integer derived from said message M in accordance with a publicly known 
algorithm H and KeycA is a private key of said certifying authority CA; 

f) publishing a public key KeycA*P for said certifying authority CA; and 

g) controlling said digital postage meter to compute a private key KeyDM, 

KeypM = TDM + Idm = tdm + rcA+ H(M)KeycA; and 

h) controlling said digital postage meter to print an indicium and digitally sign said 
indicium with said key Keyow; whereby 

i) said verifying party can compute said user's public key KeyDM*P as 

KeyDM*P = OMCdm + H{M) KeycA^P = 
(rDM+rcArP + H(M)KeycA*P 
from knowledge of H, M, [P], said public key KeycA*P» and OMCdm. 

1 5. (previously presented) A method for controlling a digital postage meter to 
print indicia signed with a private key Keyow based upon a published a finite group [P] 
with a binary operation [+] and a published particular point P in said group and a 
published a binary operation K*p. where K is an integer and p is a point in said group, 
such that K*p is a point in said group computed by applying said operation [+] to K 
copies of said point p, so that a public key KeyDM*P of said digital postage meter can be 
determined by a party seeking to verify indicia printed by said digital postage meter from 
published infomnation with assurance that said public key KeyoM'P has been certified by 
a certifying authority CA, said method comprising the steps of: 
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a) controlling said digital postage meter to generate a random number rpM and 
send a point rDM*P to a certifying station; 

b) controlling said digital postage meter to receive a certificate OIVICdm from a 
certifying station operated by said certifying authority CA, wherein; 

OMCdm = (roM + rcA)*P; and wherein 
roM is a random Integer generated by said digital postage meter and rcA is a random 
integer generated by said certifying station; 

c) controlling said digital postage meter to receive an integer bw from said 
certifying station, wherein; 

Idm = rcA+ H(M)KeycA: and wherein 
M is a message published by said certifying station and H(M) is an integer derived from 
said message M in accordance with a publicly known algorithm H and KeycA is a private 
key of said certifying authority CA; 

d) controlling said digital postage meter to compute a private key KeyoM, 

KeyoM = roM + Idm = tdm + rcA+ H(M)KeycA: and 

e) controlling said digital postage meter to print an indicium and digitally sign said 
Indicium with said key KeyoM; whereby 

f) said verifying party can compute said digital postage meter public key KeyDM*P 

as 

KeyoM*P - OMCdm + H(M) KeycA*P = 
(rDM+rcA)*P + H(M)KeycA*P 
from knowledge of H. M, [P], said public key KeycA*Pr and OMCom- 

16. (previously presented) A method for controlling a certifying station operated 
by a certifying authority CA to publish infomiation relating to a digital postage meter for 
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printing indicia signed with a private key KeyoM based upon a published a finite group 
[P] with a binary operation [+] and a published particular point P in said group and a 
published a binary operation K*P, where K is an integer and p is a point in said group, 
such that K*p is a point in said group computed by applying said operation [+] to K 
copies of said point p. so that a public key KeyoM^P of said digital postage meter can be 
determined by a party seeking to verify indicia printed by saW digital postage meter from 
said published information with assurance that said public key Keyow^P has been 
certified by a certifying authority CA, said method comprising the steps of: 

a) controlling said certifying station to receive a point Tdm^P from said digital 
postage meter, where tdm is a random number generated by said digital postage meter; 

b) controlling said certifying station to generate and send to said digital postage 
meter a certificate OMCdm. wherein; 

OMCdm = (rDM+ rcAfP; and wherein 
rcA is a random integer generated by said certifying station; 

c) controlling said certifying station to generate and send to said digital postage 
meter an integer Idm. wherein; 

Idm = rcA+ H(M)KeycA; and wherein 
M is a message published by said certifying station and H(M) is an integer derived from 
said message M in accordance with a publicly known algorithm H and KeycA is a private 
key of said certifying authority CA; whereby 

d) said digital postage meter can compute said private key Keyow, 

KeyoM = rDM+ Idm = Tdm + rcA+ H(M)KeycA; and 
and digitally sign said Indicium with said key Keyow; and whereby 

e) said verifying party can compute said digital postage meter public key KeyDM*P 

as 

KeyDM*P ° OMCdm + H(M) Keycyv*P « 
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(rDM+rcArP + H(M)KeycA*P 
from knowledge of H, M. [P]. said public key KeycA*P. and CERTdm. 

17. (previously presented) A method for controlling, and distributing information 
among a user station, a digital postage meter and a certifying station operated by a 
certifying authority CA for publishing information, so that a public key Keyso'P of said 
digital postage meter can be determined by a party seeking to verify indicia printed by 
said digital postage meter from said published information with assurance that said 
public key Key5o*P has been certified by said certifying authority CA, said method 
comprising the steps of: 

a) defining and publishing a finite group [P] with a binary operation [+1 and 
publishing a particular point P in said group; 

b) defining and publishing a binary operation K*p, where K is an Integer and p Is 
a point in said group, such that K*p is a point in said group computed by applying said 
operation [+] to K copies of said point p; 

c) controlling a certifying station to publish a certificate OMC50 for said digital 
postage meter, wherein; 

OMC50 = (r50+ rcA)*P; and wherein 
rso is a random Integer generated by said digital postage meter and rcA Is a random 
integer generated by said certifying station; 

d) controlling said certifying station to publish a message M; 

e) controlling said certifying station to generate an integer (50 . and send said 
integer to said user station . wherein; 

ho = rcA+ H{M)KeycA; and wherein 
H(M) is an integer derived from said message M in accordance with a publicly known 
algorithm H and KeycA is a private key of sard certifying authority CA; 



poozTsM.! »Page 7 of 14 

PAGE 10117 * RCVD AT miM 1:28:54 PM [Eastern Daylight Tanel * SVR:U5PT0-EFXRF.1/1 * DNIS:8729306 ' CSiD:203 924 3919* DURATION (inni^s):04-24 



JUN 14 2004 13:25 FR INTELLECTUfiL PR0PERTY3 924 3919 TO 91703B72930G P. 11 



Appln. No.: 09/280.628 

Amdt. Dated June 14, 2004 

Reply to Office Action dated March 1 1 . 2004 

f) publishing a public key KeycA*P for said certifying authority CA; and 

g) oontrolling said user station to compute a private l<ey Keysa, 

Keyso = rso + Iso = rso + rcA+ H(M)KeycAi and 

h) transmitting said key Keysoto said postage meter; whereby 

i) said digital postage meter can print an indicium and digitally sign said indicium 
with said key Keyso; and whereby 

1) said verifying party can compute said user's public key Keyso*? as 
Key5o*P = OIVICso + H(M) KeycA*P = 
(rso+rcArP + H(M)KeycA*P 
from knowledge of H. M» [P], said public key KeycA*P. and OMC50- 

18. (previously presented) A method as described in claim 17 wherein said 
publicly known manner for deriving an integer from said published information 
comprises applying a hashing function to said message M. 

19, (previously presented) A method as described in claim 18 wherein said 
message M includes infomnation lAV identifying said digital postage meter and 
operating parameters applicable to said digital postage meter. 

20, (previously presented) A method as described in claim 17 wherein said 
message IVI includes information lAV Identifying said digital postage meter and 
operating parameters applicable to said digital postage meter. 

21 . (previously presented) A method as described in claim 1 7 wherein said 
group [P] is defined on an elliptic curve. 
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22. (previously presented) A method as described in claim 1 7 wherein said 
message M includes information tying said postage meter's public K&y Key5o*P to said 
infonmation lAV. 

23. (previously presented) A method for controlling a certifying station operated 
by a certifying authority CA to publish information relating to a digital postage meter for 
printing indicia signed with a private key Keyso based upon a published a finite group [P] 
with a binary operation [+1 and a published particular point P in said group and a 
published a binary operation K«p. where K is an integer and p is a point in said group, 
such that K*p is a point In said group computed by applying said operation [+] to K 
copies of said point p, so that a public key KeyowT of said digital postage meter can be 
determined by a party seeking to verify indicia printed by said digital postage meter from 
said published information with assurance that said public key Keyow*? has been 
certified by a certifying authority CA. said method comprising the steps of: 

a) controlling said certifying station to receive a point roM^P from a user station, 
where roM is a random number generated by said user station; 

b) controlling said certifying station to generate and send to said user station a 
certificate OMCso, wherein; 

OMCso = (rso + rcA)*P: and wherein 
rcAis a random integer generated by said certifying station; 

c) controlling said certifying station to generate and send to said user station an 
Integer Iso, wherein; 

Iso rcyv+ H(M)KeycA; and wherein 
M is a message published by said certifying station and H(M) is an integer derived from 
said message M in accordance with a publicly known algorithm H and KeycA Is a private 
key of said certifying authority CA; whereby 

d) said user station can compute said private key KeyoM, 
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Keyso = rso + Iw = rw + rcA+ H(M)KeycA 
and transmit said key Keyso to said digital postage meter; whereby 

e) said digital postage meter can digitally sign said indicium with said key Keyso; 
and whereby 

f) said verifying party can compute said digital postage meter public key Keyso*P 

as 

Key5o*P = OMC50 + H(M) KeycA*P = 
(roM +rcA)*P + H(M)KeycA*P 
from knowledge of H, M, [P], said public key KeycA*P. and CERTdm- 

24. (previously presented) A method for determining a public key KeyoM*P of a 
digital postage meter with assurance that said key KeyoM has been certified by a group 
of one or more certifying authorities CA, said method comprising the steps of: 

a) scanning an indicium produced by said postage meter to obtain a certificate 
OMCdm for said postage meter, wherein; 

OMCdm = (roM + sum(rcAi))*P; and wherein 
rm is a random integer known only to a party generating said key KeyoM and sum(rcAi) 
Is a sum of a plurality of random integers rcAi» an ith one of said certifying stations 
generating an ith one of said random integers rcAi! 

b) scanning said indicium produced by said postage meter to obtain a message 
M said message M being published by a certifying station operated by one of said 
certifying authorities CA; 

c) computing a hash H(M) of said message M in accordance with a 
predetermined hashing function H; 
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d) obtaining at least one public key cai*P corresponding to said one or more 
certifying authorities CA. an ith one of said authorities having an ith one of said keys 
KeycAi; 3nd 

e) computing said user's public key Keyu*P as 

Keyu*P = CERTuM H(M)sumM(KeyCArP )= 
(ru + sum(rcAi)rP [+1 sum(H(M)KeycAirP; wherein 

f) a binary operation [+] is defined on a finite group [P] having a published 
particular point P; and 

g) K*p, is a second binary operation defined on said group [P], where K is an 
integer and p Is a point in said group, such that K*p, is a point in said group computed 
by applying said operation [+] to K copies of said point p. 

25. (canceled) 

26. (canceled) 

27. (previously presented) A method as described in claim 31 v/herein M = 
(e.tAV), w^here !AV is an identity and attributes value for said postage meter. 

28. (canceled) 

29. (canceled) 

30. (previously presented) A method as described in claim 32 wherein M = 
(e.lAV), where lAV is an identity and attributes value for said postage meter. 

31 . (previously presented) A method of digitally signing a postal Indicium 
comprising the steps of: 
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a) generating a message m. said message m including indicia data; 

b) generating a digital signature with message recovery for said message m; and 

c) Incorporating said digital signature into said Indicium; wherein 

d) said generating step further comprises the substeps of: 

d1) generating a random integer rs, rs < n, where n is the order of a group 
[P] defined on an elliptic curve; 

d2) generating a integer K, 
K= K(rs*P) 

where K(p) Is a mapping of points in [P] onto the integers, and P is a particular 
published point In [P]; 

d3) generating e, 
e = SKEK(m) 

where SKEk is a symmetric key encryption algorithm using key K; 

d4) generating H(M), where H Is a hashing function and M is a message 
which can be recovered from said indicium; 

d5) generating s = KeyDMH(M) + rs, 
where KeyoM is the private key of a postage meter which produced said Indicium; and 

d6) setting said digital signature for said message m equal to the pair 

(s,e). 

32. (previously presented) A method of verifying a digital signature of a postal 
indicium comprising the steps of: 
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a) recovering a message m from a digital signature of a postal indiciunn; and 

b) accepting said signature as valid if said message m is Internally consistent; 
wherein 

c) said recovering step further comprises the substeps of: 

c1) recovering a public key KeyDM*P for a postage meter which produced 
said indicium; 

c2) obtaining the signature (s.e) of said indicium, where s - KeyDiviH(M) 
+rs and e = SKEK(m), where SKEk is a symetric key encryption algorithm using key K, m 
is indicia data, and M is a message recoverable from said indicium; 

c3) obtaining M from said Indicium; 

c4) generating 

s*PHH{M)KeyoM*P = 

H{M)KeyoM*P M rs*P [-] H{M)KeyDM*P = 

rs*P 

where [-] Is the inverse of [+]; 

c5) generating 

K = K(rs*P) 

where K(p) is a mapping of points in [P] onto the integers, and P is a particular 
published point in [P]; 

c6) generating 

m = SKE-V{e) 
where SKE'V is the inverse of SKEk. 
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